Code Review
Skill ActiveReview code changes for security, performance, and correctness. Trigger with a PR URL or diff, "review this before I merge", "is this code safe?", or when checking a change for N+1 queries, injection risks, missing edge cases, or error handling gaps.
To provide a thorough and structured code review for security, performance, and correctness, helping developers identify issues before merging changes.
Features
- Structured code review
- Security vulnerability detection
- Performance bottleneck identification
- Correctness and edge case analysis
- Actionable suggestions with code examples
Use Cases
- Reviewing PRs before merging
- Checking code for injection risks
- Identifying N+1 queries or performance issues
- Ensuring proper error handling and edge case coverage
Non-Goals
- Automatically fixing code changes
- Replacing human code reviews entirely
- Performing static analysis on compiled binaries
Trust
- warning:Issues Attention29 issues opened and 4 closed in the last 90 days indicates a low closure rate, suggesting slow maintainer response.
Installation
First, add the marketplace
/plugin marketplace add anthropics/knowledge-work-plugins/plugin install engineering@knowledge-work-pluginsQuality Score
Trust Signals
Similar Extensions
Claude Handoff
100Run /handoff to capture session data, then write a phased implementation plan that references it. Creates beads for tracking.
Unslop Review
100Rewrites code review comments so they read like a human teammate wrote them. Cuts corporate-AI throat-clearing ("I noticed...", "I was wondering if perhaps...", "It might be worth considering..."). Each comment is direct: location, the issue, a concrete fix. Use when user says "humanize review", "de-slop PR comment", "make this feedback sound human", "review this PR", "code review", "/review", "/unslop-review". Auto-triggers when reviewing PRs.
Codex PR Review
100Revisa pull requests en proyectos Drupal 11 (u otro) siguiendo la metodología Codex (lógica de negocio, edge cases de hooks/queries, seguridad, performance, completitud). Genera un informe .md en la carpeta del IDE detectado (.antigravity/, .cursor/, .vscode/ o docs/) con hallazgos por severidad y soluciones accionables. Usar cuando el usuario pida "revisión Codex", "revisión de PR", "revisar PR", "revisar PR
Codex Diff Develop
100Revisa el diff de la rama actual frente a develop en proyectos Drupal 11 siguiendo la metodología Codex (lógica de negocio, edge cases de hooks/queries, seguridad, performance, completitud). Genera un informe .md en la carpeta del IDE detectado (.antigravity/, .cursor/, .vscode/ o docs/) con hallazgos por severidad y soluciones accionables. Usar cuando el usuario pida "Revisión diff develop", "revisión diff develop", "diff develop", "revisar diff", "codex diff" o expresiones similares con intención de auditar cambios contra develop. Triggers: diff develop, codex diff, revisión diff, lint diff develop, auditar diff.
Semgrep Rule Creator
100Creates custom Semgrep rules for detecting security vulnerabilities, bug patterns, and code patterns. Use when writing Semgrep rules or building custom static analysis detections.
Agent Reviewer
99Agent skill for reviewer - invoke with $agent-reviewer